Chainsaw

A fast forensic triage tool for detecting suspicious Windows event log activity using rule based threat hunting

Jan 21, 2026

∙ Paid

Chainsaw is an open source DFIR and threat hunting tool developed by Florian Roth that focuses on rapid analysis of Windows Event Logs. It enables defenders to quickly identify malicious behavior, at…

Continue reading this post for free, courtesy of CyberMaterial.

Or purchase a paid subscription.